CNNVD-202602-1301 Information
CNNVD ID
CNNVD-202602-1301
Related CVE
- CNNVD Published: 2026-02-09
Description (Chinese)
Litestar是Litestar开源的一个强大、灵活但固执己见的 ASGI 框架。 Litestar 2.20.0之前版本存在安全漏洞,该漏洞源于允许列表条目编译方式不当,可能导致绕过主机名验证。
Description (English)
Litestar is a powerful, flexible but adamant ASGI framework for Litestar’s open source. There was a security loophole in the previous version of Litestar 2.20.0, which stemmed from the inappropriate way in which entries in the list were allowed to be compiled and could lead to bypassing the host name authentication.
Vulnerability Type
其他
Affected Vendor
Litestar
Published
2026-02-09
Last Modified
2026-02-24
References
https://docs.litestar.dev/2/release-notes/changelog.html#2.20.0 https://github.com/litestar-org/litestar/security/advisories/GHSA-93ph-p7v4-hwh4 https://github.com/litestar-org/litestar/commit/06b36f481d1bfea6f19995cfb4f203aba45c4ace https://github.com/litestar-org/litestar/releases/tag/v2.20.0 https://access.redhat.com/security/cve/cve-2026-25479
Patch
https://github.com/litestar-org/litestar/releases
Share on: